JUNOS – Authentication using TACACS+

Friday, April 3rd, 2009

Juniper M7i – JUNOS 9.3R2.8 The username must be set to “remote”. #edit system set login user remote class super-user set login user remote full-name “TACACS+ remote User” set login user remote uid 3333 set accounting events [ login interactive-commands ] destination tacplus set authentication-order [ tacplus password ] set tacplus-server 10.20.30.22 source-address 10.20.30.11 port [...]

JUNOS – Protecting the routing engine

Sunday, January 11th, 2009

- JUNOS 9.3 R2.8 – Juniper M7i – RE-850 – To protect the RE you only allow that sort of traffic that the router needs to function properly, by building a firewall filter that applies on the loopback interface.You should also limit the amount of traffic that’s reaching the routing engine. set policy-options prefix-list mgmnt-access [...]